IN THE CLAIMS 

1. (Currently Amended) A system for distributing authentication information to users of a 
remote devices, comprising: 

a » computer-readable authentication information store configured to store 
authentication information for a plurality of users; 

a » data processor executable authentication system configured to receive from the 
remote device a request for authentication information for one of the plurality of users from a 
femete-deviee; 

wherein the request comprises identity information for use in determining whether 
the request is from one of the plurality of users, 

wherein the authentication system retrieves based on the identity information the 
authentication information for the one of the plurality of users from the authentication 
information store; 

wherein the retrieved authentication information is provided to the remote device 
for use in authenticating a user that is requesting remote access to a computer network. 

2. (Previously Presented) The system of claim 1, wherein the authentication information is used 
in a two-factor authentication scheme. 

3. (Currently Amended) The system of claim 1, wherein the authentication information store 
comprises a seed store configured to store a plurality of seeds; 

wherein the authentication system is configured to receive a seed request from the 
remote device, which includes an access code, in order t o retrieve the one of the plurality of 
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seeds from the seed store, to calculate an access code using the retrieved seed, to determine 
whether the calculated access code matches the received access code, and to return the retrieved 
seed to the remote device where the calculated access code matches the received access code. 

4. (Original) The system of claim 1, wherein the request comprises a Hypertext Transfer 
Protocol (HTTP) connection request. 

5. (Previously Presented) The system of claim 1, wherein the request comprises a network 
password and a digital signature, wherein the network password and digital signature are verified 
by the authentication system before the authentication information is provided to the remote 
device. 

6. (Previously Presented) The system of claim 1, wherein the identity information comprises 
user information and account information. 

7. (Previously Presented) The system of claim 6, wherein the identity information identifies a 
particular user and corresponding authentication information being requested, and is used by the 
authentication system to authenticate the user requesting the authentication information. 

8. (Previously Presented) The system of claim 1, wherein the identity information in the request 
is used by the remote device for two-factor authentication. 
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9. (Previously Presented) The system of claim 8, wherein the identity information comprises a 
network password entered by the user of the remote device and a digital signature generated 
based on a transformation of at least a portion of the information in the request, a signature key, 
and a signature algorithm. 

10. (Original) The system of claim 1, wherein the authentication system does not provide the 
authentication information to the remote device because a match was not found in the 
authentication information store based upon the identity information. 

11. (Previously Presented) The system of claim 1, wherein the authentication information 
comprises a password required for remote access to resources in the computer network, wherein 
the password is not known to a user of the remote device but is required for access to the 
resources in the computer network. 

12. (Previously Presented) The system of claim 1, wherein the authentication information 
comprises an access code required for remote access to resources in the computer network, 
wherein the access code is not known to a user of the remote device but is required for access to 
the resources in the computer network. 

13. (Currently Amended) The system of claim 1, wherein the retrieved authentication 
information comprises an expiring password which is valid for a short period of time. 
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14. (Currently Amended) The system of claim 13, wherein the sherl-period of time is on the 
order of minutes. 

15. (Currently Amended) The system of claim 1, wherein the retrieved authentication 
information comprises an expiring access code which is valid for a short period of time. 

16. (Previously Presented) The system of claim 1, wherein the retrieved authentication 
information comprises a non-expiring password and is stored in a protected data store on the 
remote device. 

17. (Previously Presented) The system of claim 1, wherein the retrieved authentication 
information comprises a seed from which access codes are to be generated by the remote device, 
wherein the seed is stored in a protected data store on the remote device. 

18. (Previously Presented) The system of claim 1, wherein the remote device uses the retrieved 
authentication information to gain access to a corporate local area network (LAN). 

19. (Original) The system of claim 18, wherein two-factor authentication is used in the LAN to 
authenticate a user requesting remote access to the LAN, wherein the retrieved authentication 
information is used in performing two-factor authentication in order to gain access to the LAN. 

20. (Previously Presented) The system of claim 19, wherein the retrieved authentication 
information comprises a seed which the remote device's two-factor code generator uses to 
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produce an access code, wherein the access code is also based upon a value provided by the 
remote device's clock, wherein the access code is used by the remote device to gain access to the 
LAN; 

wherein the seed is used by the authentication system to also generate an access 
code for use in a comparison with the access code generated by the remote device; 

wherein access to the LAN is either granted or denied based upon the comparison. 

21. (Original) The system of claim 20, wherein the remote device only generates the access 
code when access to the LAN is requested by the user of the remote device. 

22. (Previously Presented) The system of claim 20, wherein the authentication information store 
comprises an index by user name that indicates users authorized for remote access to the LAN. 

23. (Previously Presented) The system of claim 22, wherein the authentication information store 
stores user seed values from which access codes are to be generated . 

24. (Original) The system of claim 1, wherein the remote device is a wireless mobile 
communication device. 

25. (Original) The system of claim 24, wherein the remote device stores the authentication 
information in a data store. 

26. (Original) The system of claim 25, wherein the data store is implemented in a smart card. 
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27. (Original) The system of claim 25, wherein the data store is implemented in a Universal 
Serial Bus (USB) token. 

28. (Original) The system of claim 1, wherein the remote device is a desktop computer. 

29. (Previously Presented) The system of claim 1, wherein the remote device communicates 
with the authentication system over a communication system, wherein the communication 
system comprises a wide area network (WAN) and a wireless network gateway. 

30. (Previously Presented) A method of distributing authentication information for remotely 
accessing computer resources, comprising: 

receiving a request for the authentication information from a remote device, the 
request comprising identity information of a user of the remote device; 

wherein the authentication information is stored in an authentication data store; 

authenticating the user based on the identity information in the request; and 

returning the authentication information to the remote device to authenticate a 
user requesting remote access to a computer resources based upon the returned authentication 
information. 

31. (Currently Amended) An apparatus for use in handling authentication information for a 
users of aremote devices, comprising: 
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an computer-readable authentication information store configured to store 
authentication information for a-the user of a-the remote device, the authentication information 
provided by a remote authentication system; 

wherein a request for the authentication information from the remote device to the 
remote authentication system contains identity information; 

wherein the authentication information that is stored in a data store by the remote 
authentication system is provided to the remote device after the request is processed based upon 
the identity information contained in the request; 

a data processor executable code generation system configured to retrieve the 
authentication information stored in the authentication information store; 

wherein access information is generated based upon the retrieved authentication 
information and is used to authenticate a user requesting remote access to a remote computer 
network. 

32. (Previously Presented) A method for obtaining authentication information for use in 
remotely accessing a computer network, the method comprising: 

providing a request from a user of a remote device to an authentication system for 
the authentication information that is stored in a data store by the authentication system; 

wherein the request comprises identity information for use by the authentication 
system to authenticate the user based on the identity information provided in the request; 

receiving by the remote device the authentication information from the 
authentication system; 
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wherein the received authentication information is used to authenticate a user 
requesting remote access to the computer network. 
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